General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.
About General Topics
Post a discussion here if you have general questions regarding configuration and troubleshooting for Palo Alto Networks products. Use this forum to collaborate with like-minded security professionals to improve your security posture.

Discussions

Not able to access th URL

Hello Team,We are not able to access the below URL :tn3270e.amadeusprintservices.comAs per the website support team they have advised to enabled the below port to access the URL :TCP9876,443,80We have already allowed the web browsing traffic for the network . what to do for 9876 port.Please advise.

tiwara by L3 Networker
  • 5869 Views
  • 6 replies
  • 0 Likes

Resolved! Do I have a split - full tunnel issue

I'm a system admin, and have also become the Network guy. This is okay: it's a small network. I'm still learning.I have a PA-200, installed by a VAR, in a colocation rack. Rack is filled with windows and linux hosts. I need to alter the VPN so that when my users in the office connect from their laptops, they can see the systems (ssh, rdp, ht...

bdunbar by L3 Networker
  • 5278 Views
  • 7 replies
  • 0 Likes

Resolved! Email not going out

What is the configuration needed for a PA-500 to allow emails to go out. We use exchange and a Cisco spam blocker using port 25. We are recieving emails fine but external emails are not being sent out.

ARP by L2 Linker
  • 9541 Views
  • 15 replies
  • 0 Likes

Resolved! Problem connecting SSH

I have a vpn configured (PA<->PA) to manage my FWs. The problem is that when I open a ssh to the FW ip LAN (10.105.0.7), session ssh runs successfully and I can connect to the FW. But if I open ssh to the management ip 10.98.200.16 ssh remains frozen.Looking at the log monitor, when i try the LAN ip i can see how the PA recognise the Appli...

SOC_CSG by L4 Transporter
  • 22762 Views
  • 29 replies
  • 0 Likes

import config from PA-2020 to PA-3020

Hi,I need to change a old PA_2020 with a new PA-3020 and would like to use the configuration of old device in the new firewall to avoid to do the work again..So, Is it possible to import config file from a PA-2020 to a new PA-3020?If yes, is there any requirement (version or something)?, and it is enough doing Export Named Configuration Snapshot...

Es recomendable sustituir un Firewall Microsoft TMG por un equipo Palo Alto ?

Estoy pensando sustituir uno de mis firewalls actuales un Microsoft TMG por un nuevo equipo Palo Alto, en términos generales a nivel de funcionalidades de firewall estoy seguro que palo alto sera mejor y me dará mejor performance, pero tengo dudas sobre como migrar las publicaciones tanto de Exchange (OWA y Active Sync) como de Lync (Exclusivame...

PA-500 and memory upgrade

Recently I ordered and installed the memory upgrade for my PA-500. It was under $400, is a simple end user install and upgraded the management plane to 2gb (from 1gb).I will not give any estimates as to improvement as I do not want to exaggerate, however, I highly recommend anyone with a PA-500 spend the $400 (ish).Hope that helps,Bob

BobW by L4 Transporter
  • 12916 Views
  • 16 replies
  • 1 Likes

Custom Reports by Interface

Is it possible to get custom reports for traffic on a per interface basis? The only thing remotely close that I have found is under Traffic Reports I can see ingress interfaces and egress interfaces, but all that shows me is a daily total. What I'm looking for is to see these statistics on a more granular basis (by minute or hour) as a custom re...

Traffic denied by one context is allowed in the other

Hello All,I have a strange situation and need some help.I have 2 legs of my firewall implemented on Core and Edge level. I have a host 10.1.1.10 behind my Core layer firewall trying to access an external FTP server.On the core layer I have a policy to deny ftp traffic from inside to outside and the logs show the traffic is denied.But on the Edge...

Resolved! Application

I am trying to block some websites such as music.yahoo.com ,mylife.com Spaces.live.com and Talkgadget.com . But they aren't one of the listed choices and I am unable to add them to my blocked application list. How can I do that?

infotech by L4 Transporter
  • 6969 Views
  • 11 replies
  • 0 Likes

Global Protect Pre-Authentication with public SSL cert

Folks.My boss wants me to implement "pre-authentication" for my Global protect clients, so that they authenticate against AD before logging on to their laptops when on VPN, and ergo run login scripts, group policies etc.I have https://live.paloaltonetworks.com/docs/DOC-5229 and read through it, and it describes setting up using self-signed certi...

darren_g by L4 Transporter
  • 6023 Views
  • 9 replies
  • 0 Likes

Resolved! GlobalProtect DNS server ignores the access routes

Hey all,Just another PaloAlto funkiness I found out today...When you configure a DNS server under the gateway configuration for GlobalProtect a route will automatically be added to route traffic to this DNS-ip through the tunnel: REGARDLESS of what you fill in in the access routes.Ex: DNS server: 10.0.0.1 and access route: 192.168.0.0/16When con...

mr.linus by L4 Transporter
  • 3197 Views
  • 2 replies
  • 0 Likes

Resolved! FTPS and Service - problem

HelloI have FTP server on Debian 7 (ProFTPD 1.3.1) and security rule:and now FTPS connection works.With "application-default" as a service FTPS sessions hangs on listing directory and sfter some time FTP client was disconected.I'm on 6.0.2 PAN with latest updates.Is this a normal behaviour? According to best practice we should use "application-d...

_slv_ by L4 Transporter
  • 14456 Views
  • 20 replies
  • 0 Likes
  • 24396 Posts
  • 123 Subscriptions
Top Solution Authors
Labels